• PRINTER RUSH • 

(PTO ASSISTANCE) 



Application: Q^/ < B'/3 m % J Examiner: (jUnr)^ GAU : J?13*f 

From: e&ffi Location: (UK}" FMF FDC Date: 

Tracking #: gpm o^/f/J, Week Date: /// 2 / / %» «™ 



DOC CODE 


DOC DATE 


MISCELLANEOUS 


□ 1449 




□ Continuing Data 


□ ids 




1 1 Foreign Priority 


□ CLM 




□ Document Legibility 


□ iIFW 




1 1 Fees 


□ SRFW 




□ Other 


□ drw 






□ oath 






□ 312 






IB spec 







[RUSH] MESSAGE: SPe.<?>' fr*cd?~i : f<^y^ - t L^tul NO- S a~>J 




[XRUSH] RESPONSE: 




NOTE: This form will be included as part of the official USPTO record, with the Response 
document coded as XRUSH. 
REV 10/04 



PATENT 

Attorney Docket No.: 1 8926-002700US 
Client Reference No.: D2312 

PATH SEALED SOFTWARE OBJECT CONDITIONAL ACCESS 

CONTROL 

CROSS-REFERENCES TO RELATED APPLICATIONS 
5 This invention is related to U.S. Patent No» (U.S. Patent Application 

No. 09/651,742, filed August 30, 2000 and entitled Resource Access Control System") 
(hereinafter "Meandzija T), the disclosure of which is incorporated herein by reference for all 
purposes. This invention is related to US. Patent No. (U.S. Patent Application No. 

09/580,303, filed May 26, 2000 and entitled "Object and Resource Security System") 
10 (hereinafter "Sprunk I"), the disclosure of which is incorporated herein by reference for all 
purposes. 

FIELD OF THE INVENTION 
1 5 The present invention relates to secure access systems in general, and more 

particularly to securing a path to information on the Internet. 



BACKGROUND OF THE INVENTION 

20 Cable television (TV) providers distribute video streams to subscribers by way 

of conditional access (CA) systems. CA systems distribute video streams from a headend of 
the cable TV provider to a set-top box (STB) associated with a subscriber. The headend 
includes hardware that receives the video streams and distributes them to the STB's within 
the CA system. Select STB's are allowed to decode certain video streams according to 

25 entitlement information sent by the cable TV provider to the STB . In a similar way, other 
video program providers use satellite dishes to wirelessly distribute video content to STB's. 

Video programs are broadcast to all STB's, but only a subset of those boxes is 
given access to specific video programs. For example, only those that have ordered a pay- 
per-view boxing match are allowed to view it even though every STB may receive encrypted 

30 data stream for the match. Once a user orders the pay per view program, an entitlement 

message is broadcast in encrypted form to all STB's. Only the particular STB for which the 
entitlement message is intended can decrypt it Inside the decrypted entitlement message is a 
key that will decrypt the pay per view program. With that key, the STB decrypts the pay-per- 



